Secure information flow by self-composition

Barthe, Gilles; D’Argenio, Pedro R.; Rezk, Tamara

doi:10.1017/s0960129511000193

Cited by 176 publications

(217 citation statements)

References 46 publications

Supporting

Mentioning

217

Contrasting

Order By: Relevance

“…There are at least two natural strategies for defining a wp calculus in a relational setting. The calculus can either operate on both games in lockstep, or else it can operate on each game separately, in the style of self-composition [2]. Both strategies are incomplete: the lockstep wp calculus fails on programs that are not structurally equivalent, whereas self-composition fails to handle random assignments and adversary calls.…”

Section: An Overview Of Easycryptmentioning

confidence: 99%

Computer-Aided Security Proofs for the Working Cryptographer

Barthe

Grégoire

Heraud

et al. 2011

Lecture Notes in Computer Science

Self Cite

189

216

View full text Add to dashboard Cite

Abstract. We present EasyCrypt, an automated tool for elaborating security proofs of cryptographic systems from proof sketches-compact, formal representations of the essence of a proof as a sequence of games and hints. Proof sketches are checked automatically using off-the-shelf SMT solvers and automated theorem provers, and then compiled into verifiable proofs in the CertiCrypt framework. The tool supports most common reasoning patterns and is significantly easier to use than its predecessors. We argue that EasyCrypt is a plausible candidate for adoption by working cryptographers and illustrate its application to security proofs of the Cramer-Shoup and Hashed ElGamal cryptosystems.

show abstract

Section: An Overview Of Easycryptmentioning

confidence: 99%

Computer-Aided Security Proofs for the Working Cryptographer

Barthe

Grégoire

Heraud

et al. 2011

Lecture Notes in Computer Science

Self Cite

189

216

View full text Add to dashboard Cite

show abstract

“…The embedding relies on separability; our conditions are inspired from self-composition [5], and are reminiscent of the monotonicity and frame properties of separation logic [19].…”

Section: Synchronized Productsmentioning

confidence: 99%

Beyond 2-Safety: Asymmetric Product Programs for Relational Program Verification

Barthe

Crespo

Kunz

2013

Logical Foundations of Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. Relational Hoare Logic is a generalization of Hoare logic that allows reasoning about executions of two programs, or two executions of the same program. It can be used to verify that a program is robust or (information flow) secure, and that two programs are observationally equivalent. Product programs provide a means to reduce verification of relational judgments to the verification of a (standard) Hoare judgment, and open the possibility of applying standard verification tools to relational properties. However, previous notions of product programs are defined for deterministic and structured programs. Moreover, these notions are symmetric, and cannot be applied to properties such as refinement, which are asymmetric and involve universal quantification on the traces of the first program and existential quantification on the traces of the second program. Asymmetric products generalize previous notions of products in three directions: they are based on a control-flow graph representation of programs, they are applicable to non-deterministic languages, and they are by construction asymmetric. Thanks to these characteristics, asymmetric products allow to validate abstraction/refinement relations between two programs, and to prove the correctness of advanced loop optimizations that could not be handled by our previous work. We validate their effectiveness by applying a prototype implementation to verify representative examples from translation validation and predicate abstraction.

show abstract

“…This restrictiveness makes practical programming impossible. Finally, the extensibility of type systems is very poor: each variant of the information flow policy or each new feature added to the programming language requires a modification of the type system and its soundness proof [15].…”

Section: Property Verification and Attack Synthesismentioning

confidence: 99%

“…This thesis discusses a method to encode the information flow property as a temporal logic property. To do this, we implement the idea of self-composition -a construction where a program is composed with its copy and each program copy keeps an independent memory [34,15]. Basically, we construct a program model that executes the program to be verified twice, in parallel with itself.…”

Section: Logic-based Verificationmentioning

confidence: 99%

See 1 more Smart Citation

Qualitative and quantitative information flow analysis for multi-threaded programs

Ngo¹

View full text Add to dashboard Cite

Secure information flow by self-composition

Cited by 176 publications

References 46 publications

Computer-Aided Security Proofs for the Working Cryptographer

Computer-Aided Security Proofs for the Working Cryptographer

Beyond 2-Safety: Asymmetric Product Programs for Relational Program Verification

Qualitative and quantitative information flow analysis for multi-threaded programs

Contact Info

Product

Resources

About